Re: rac user equivalence
- From: Dan Norris <dannorris@xxxxxxxxxxxxx>
- To: John Smith <john40855@xxxxxxxxx>
- Date: Thu, 8 Apr 2010 08:48:32 -0500
Great news. That's my one thing for today...don't want to shoot way past my
goal, so I wonder what I can do for the rest of the day? :)
On Thu, Apr 8, 2010 at 8:38 AM, John Smith <john40855@xxxxxxxxx> wrote:
> Forget to reply all the last time, Dan found it, there was an extra line in
> system-auth on the problem node. Thanks Dan.
>
>
> On Thu, Apr 8, 2010 at 8:24 AM, Dan Norris <dannorris@xxxxxxxxxxxxx>wrote:
>
>> Since you can login to rac2 with a different user account, maybe you could
>> try doing "su - oracle" from the login you have to confirm the password is
>> what you think it is? Sounds like it could just be as simple as having the
>> wrong password. Seems less likely, but you could check the files in
>> /etc/pam.d (especially login and system-auth) to confirm they match between
>> the nodes too.
>>
>> Dan
>>
>>
>> On Thu, Apr 8, 2010 at 8:05 AM, John Smith <john40855@xxxxxxxxx> wrote:
>>
>>> This shows in /var/log/secure.:
>>>
>>> Apr 8 05:41:17 rac2 sshd[8421]: pam_access(sshd:account): access denied
>>> for user `oracle' from `rac1'
>>> Apr 8 05:41:17 rac2 sshd[8421]: Failed password for oracle from
>>> 192.268.2.1 port 17143 ssh2
>>> Apr 8 05:41:17 rac2 sshd[8422]: fatal: Access denied for user oracle by
>>> PAM account configuration
>>>
>>> On Wed, Apr 7, 2010 at 8:34 PM, Matthew Zito <mzito@xxxxxxxxxxx> wrote:
>>>
>>>> Also, maybe one of your nodes has the user shell as sbin/nologin? Or
>>>> has the account with no password and pam is preventing a login?
>>>>
>>>> An strafe of your sshd process will give you some useful data.
>>>>
>>>> Matt
>>>>
>>>>
>>>>
>>>> On Apr 7, 2010, at 9:30 PM, "Bobak, Mark" <Mark.Bobak@xxxxxxxxxxxx>
>>>> wrote:
>>>>
>>>> Ugh, it’s 9:15pm, and I’m just now heading home, so, brain is a bit
>>>> fried.
>>>>
>>>>
>>>>
>>>> First, I don’t suppose you’re installing 11gR2 Clusterware? If you are,
>>>> there’s a “SSH Connectivity” button that you click, and Oracle will set
>>>> everything up for you.
>>>>
>>>>
>>>>
>>>> Otherwise, check the log files. Anything in /var/log/secure?
>>>>
>>>>
>>>>
>>>> Try starting sshd in the foreground with the ‘-d’ option to turn on
>>>> debugging, and then attempt a login.
>>>>
>>>>
>>>>
>>>> Hope that helps,
>>>>
>>>>
>>>>
>>>> -Mark
>>>>
>>>>
>>>>
>>>> *From:* oracle-l-bounce@xxxxxxxxxxxxx [mailto:
>>>> oracle-l-bounce@xxxxxxxxxxxxx] *On Behalf Of *John Smith
>>>> *Sent:* Wednesday, April 07, 2010 7:07 PM
>>>> *To:* <oracle-l@xxxxxxxxxxxxx>oracle-l@xxxxxxxxxxxxx
>>>> *Subject:* rac user equivalence
>>>>
>>>>
>>>>
>>>> Not precisely oracle, but related. Trying to set up user equivalence on
>>>> redhat 5. When I ssh from node 2 to node 1, connecting as oracle, it works
>>>> fine, no problems.
>>>>
>>>> But when I ssh from node 1 to node 2 as oracle, it immediately closes
>>>> the connection after entering the password. This happens no matter what
>>>> user id I connect from to the oracle account.
>>>>
>>>> I can ssh to other accounts on rac2, but not the oracle account.
>>>>
>>>> ssh_config and sshd_config are identical, as are hosts.allow and
>>>> hosts.deny. Anyone have any ideas?
>>>>
>>>> [root@rac2 ssh]# ssh oracle@rac1
>>>> oracle@rac1's password:
>>>> Last login: Wed Apr 7 15:48:24 2010 from rac2
>>>> [oracle@rac1 ~]$
>>>>
>>>> [oracle@rac1 ~]$ ssh oracle@rac2
>>>> oracle@rac2's password:
>>>> Connection closed by 192.168.2.223
>>>>
>>>> [root@rac1 ~]$ ssh oracle@rac2
>>>> oracle@rac2's password:
>>>> Connection closed by 192.168.2.223
>>>>
>>>> [root@rac1 ~]$ ssh johns@rac2
>>>> johns@rac2's password:
>>>> [johns@rac2 ~]$
>>>>
>>>>
>>>
>>
>
Other related posts:
